Summary
Overview
Work History
Education
Skills
Certification
Frameworks And Techniques
Capabilities And Skills
Core Competency
Timeline
Olu Talabi

Olu Talabi

Dallas,TX

Summary

I am an IT Auditor with experience spanning IT risk assessment, security operations, and information assurance. I have worked with clients across various sectors and my expertise includes collaborating with teams on vulnerability management, IT security audits and assessments, security remediation processes, and information assurance engagements. I bring a thorough understanding of IT controls, compliance frameworks, and risk mitigation strategies to ensure robust system security and regulatory adherence.

Overview

7
7
years of professional experience
1
1
Certification

Work History

Senior IT Auditor

SIEMENS HEALTHINEERS
08.2021 - Current
  • Coordinating IT General controls (ITGC) review covering access to programs and data and computer operations
  • Benchmark security policies and IT policies against leading standards such as ISO 27001 and COBIT 5
  • Performing IT application controls (ITAC) review covering controls on system access, system configuration and processing and calculation
  • Assessing Information Security Policy in alignment with relevant frameworks NIST-CSF, CIS, COBIT and ISO 27001
  • Implemented information security controls and evaluated operating effectiveness of information security controls
  • Supporting Cyber Governance, Risk and Compliance (GRC) Review on frameworks such as ISO 27001, SOC 2, and PCI
  • Performing gap assessments to assess deficiencies and leveraged the assessment to improve ISMS and obtain ISO certifications
  • Lead audits of IT systems and business applications such as Windows Active Directory, Server review, SAP system, Oracle Database
  • Benchmark information security policies and IT policies against leading standards such as ISO 27001 and COBIT 5
  • Executing IT Internal Audit engagements, as assigned, and provided training and guidance to audit staff
  • Delivering IT audit program and client-specific assurance commitments and facilitate corrective actions for identified deficiencies
  • Assessment of the design and operational effectiveness of IT general controls (ITGCs) and Key risk indicators (KRIs)
  • Performing assessment of ITGC and application control by testing Access Control, Change Management and IT operations in line with COSO framework

Senior IT Auditor

PROFILE INTELLIGENCE
07.2019 - 08.2021
  • Coordinating IT General controls (ITGC) review covering access to programs and data and computer operations
  • Conduct IT risk assessment by understanding business objectives, internal controls, enabling technology, and IT infrastructure
  • Perform audit work over various technologies utilized by the company and various IT functions
  • Assess both the design and operating effectiveness of internal controls
  • Prioritize and assist in scheduling audit tests to be performed, and interact with auditees to obtain the necessary information
  • Contribute to identification of department operational efficiencies and changes in auditing operations
  • Evaluate controls designed to prevent or detect fraud, including management override of controls
  • Prepare and present findings as needed
  • Communicate audit results and recommendations both orally and in writing to the management
  • Participate in audit teams and department committees
  • Acquire additional knowledge of regulations and emerging technologies

Information Assurance & Audit

WALMART
04.2018 - 07.2019
  • Conducted IT performance audits and assessments to evaluate risks and controls within the IT environment and processes
  • Collaborated with independent auditors in executing audit procedures for the organization, including SOC1, SOC2, NIST, etc
  • Performed walkthroughs to determine the compliance with SOX ITGCs, reviewed control structure, and documented review findings
  • Assisted in designing audit procedures to remediate identified internal control deficiencies and assessed existing & proposed internal controls to evaluate if they satisfy required audit objectives
  • Applied in-depth knowledge of risk management principles to identified material weaknesses and vulnerabilities, threat events, evaluated potential risk impact, and recommended establishment of non-existing controls to mitigate risks

Information System Auditor

BELL TECHLOGIX
10.2017 - 03.2018
  • ITGC Control Testing Standards: Executed ITGC control testing procedures according to established standards, ensuring consistency and reliability in assessment process
  • SOX Compliance: Analyzed SOX compliance in all phases of the audit, contributing significantly to establishment and maintenance of effective internal control over financial reporting
  • SOX 404 Testing for ITGC: Conducted SOX 404 testing on all ITGC within audit scope, systematically evaluating strengths, effectiveness, and weaknesses in control environment
  • Holistic IT Security Control Audits: Performed information technology audits, analysis, and testing of information technology security controls across all layers of computing environments, assuring comprehensive evaluation from physical and operating systems to network, application layers, and end-user processes
  • Business/IT Managerial Control Review: Conducted audits focused on the review of business/IT managerial controls, contributing to overall effectiveness and efficiency of organizational controls
  • Audit Engagement Management: Managed and performed all aspects of audit engagement, including supervising, training, scheduling staff coordination, confirming profitability goals were met, and strengthening client relationships

Education

MBA - Information Technology

PURDUE UNIVERSITY GLOBAL
01.2026

BSc - Accounting

MOSHOOD ABIOLA POLYTECHNIC, NIGERIA
03-2000

Skills

  • IT controls review
  • Cyber risk management
  • Threat management
  • Vulnerability management
  • Configuration and change management
  • Access management
  • Incident management and response
  • ISMS improvements
  • Testing ITGC
  • Testing ELC
  • Testing ITAC controls
  • Security compliance frameworks
  • ISO 27001
  • PCI-DSS
  • CIS
  • NIST-CSF
  • GDPR
  • ISO 27001 implementation
  • Cybersecurity strategy
  • Security awareness training
  • ISMS readiness assessment
  • Cloud auditing knowledge
  • Cloud security controls
  • Attention to details

Certification

  • Certified Information Systems Auditor
  • Chartered Accountant
  • CompTIA Data + Certification
  • Certified SaFe 6 Scrum Master
  • PwC Digital Assurance & Transparency Job Simulation
  • Mastercard - Cybersecurity Job Simulation
  • PCI DSS Controls Implementation

Frameworks And Techniques

  • Information Compliance Framework - ISO 27001, NIST, COSO, ITIL, PCAOB, GDPR, COBIT
  • SOC 1,2 & 3 and SOX 302 & 404
  • IS Risk Assessment & Mitigation
  • Identity & Access Management
  • PCI-DSS, HITRUST, GRC, HIPAA

Capabilities And Skills

  • Expertise in performing review of IT controls across Operating System, Database and Application layers within an enterprise
  • Excellent understanding of cyber risk management, and security domains such as threat management, vulnerability management, configuration and change management, access management, incident management and response, and ISMS improvements
  • Demonstrable expertise with testing ITGC, ELC, and ITAC controls within external engagement or internal audit environment
  • Good understanding of security compliance frameworks such as ISO 27001, PCI-DSS, CIS, NIST-CSF, and GDPR
  • ISO 27001 implementation, cybersecurity strategy, management, security awareness training, and ISMS readiness assessment
  • Excellent understanding of cloud auditing knowledge, and good grasp of cloud security controls
  • Excellent ability to pay attention to details, and to manage workloads with good turnaround in accordance with the task timeline.

Core Competency

  • Control Design Assessment Evaluation
  • Control Testing Documentation
  • Control Risk Assessment
  • Internal Security Control
  • Control Deficiency Elimination Strategy
  • SOX Testing
  • COSO Framework
  • ITGC & ITAC Audits
  • PCI-DSS Standards

Timeline

Senior IT Auditor - SIEMENS HEALTHINEERS
08.2021 - Current
Senior IT Auditor - PROFILE INTELLIGENCE
07.2019 - 08.2021
Information Assurance & Audit - WALMART
04.2018 - 07.2019
Information System Auditor - BELL TECHLOGIX
10.2017 - 03.2018
PURDUE UNIVERSITY GLOBAL - MBA, Information Technology
MOSHOOD ABIOLA POLYTECHNIC, NIGERIA - BSc, Accounting

Similar Profiles

CREATE PROFILE
Olu Talabi